直接访问站点或服务时，通常容易评估相关策略的影响。When you access a site or service directly, the impact of a related policy is typically easy to assess.例如，如果策略要求对配置的 SharePoint Online 进行 MFA，则每次登录到 SharePoint Web 门户时，都会强制执行 MFA。For example, if you have a policy that requires MFA for SharePoint Online configured, MFA is enforced for each sign-in to the SharePoint web portal.但是，评估某项策略的影响并非始终是直截了当的，因为某些云应用依赖于其他云应用。However, it is not always straight-forward to assess the impact of a policy because there are cloud apps with dependencies to other cloud apps.例如，可以通过 Microsoft Teams 访问 SharePoint Online 中的资源。For example, Microsoft Teams can provide access to resources in SharePoint Online.因此，你在访问当前方案中的 Microsoft Teams 时，也会受 SharePoint MFA 策略的约束。So, when you access Microsoft Teams in our current scenario, you are also subject to the SharePoint MFA policy.

策略强制执行Policy enforcement

如果配置了服务依赖项，则可使用早期绑定或后期绑定强制来应用此策略。If you have a service dependency configured, the policy may be applied using early-bound or late-bound enforcement.

最佳做法是，尽可能跨相关的应用和服务设置常用策略。As a best practice, you should set common policies across related apps and services whenever possible.安全态势一致可以为你提供最佳用户体验。Having a consistent security posture provides you with the best user experience.例如，跨 Exchange Online、SharePoint Online、Microsoft Teams 和 Skype for Business 设置常用策略可以显著减少意外提示数（为下游服务应用不同策略时，可能会出现这些提示）。For example, setting a common policy across Exchange Online, SharePoint Online, Microsoft Teams, and Skype for business significantly reduces unexpected prompts that may arise from different policies being applied to downstream services.

下表列出了客户端应用必须满足的其他服务依赖项The below table lists additional service dependencies, where the client apps must satisfy